Commit Graph

41 Commits

Author SHA1 Message Date
mkanat%bugzilla.org
31d81c4061 Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN block
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
2006-05-12 02:41:22 +00:00
lpsolit%gmail.com
33860a25ba Bug 332598: Move ValidatePassword() and DBNameToIdAndCheck() from globals.pl into User.pm - Patch by Fr�d�ric Buclin <LpSolit@gmail.com> r=mkanat a=myk 2006-05-07 20:13:49 +00:00
lpsolit%gmail.com
b493b5754c Bug 312157: Remove $::template and $::vars from globals.pl - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave 2005-10-24 23:11:56 +00:00
lpsolit%gmail.com
733a2fdb5a Bug 312307: Misused Throw*Error tags in code and templates - Patch by Dennis Melentyev <dennis.melentyev@infopulse.com.ua> r=LpSolit a=justdave 2005-10-23 21:47:51 +00:00
lpsolit%gmail.com
5e904f0ee3 Bug 303697: Eliminate deprecated Bugzilla::DB routines from token.cgi - Patch by Teemu Mannermaa <wicked@etlicon.fi> r=LpSolit a=justdave 2005-10-12 01:16:54 +00:00
bugreport%peshkin.net
02bbb51ea9 Bug 304583: Remove all remaining need to rederive inherited groups
Patch by Joel Peshkin <bugreport@peshkin.net>
r=mkanat, a=justdave
2005-08-18 20:09:37 +00:00
lpsolit%gmail.com
9bc783cb1d Bug 304653: remove 'use Bugzilla::Error' from Util.pm - Patch by Fr�d�ric Buclin <LpSolit@gmail.com> r=mkanat a=myk 2005-08-15 17:43:38 +00:00
lpsolit%gmail.com
a8d486f572 Bug 301508: Remove CGI.pl - Patch by Fr�d�ric Buclin <LpSolit@gmail.com> r=mkanat,wicked a=justdave 2005-08-10 01:30:41 +00:00
lpsolit%gmail.com
dcce8e5a29 Bug 301453: Move CheckEmailSyntax out of CGI.pl - Patch by Fr�d�ric Buclin <LpSolit@gmail.com> r=mkanat a=myk 2005-07-20 21:24:19 +00:00
mkanat%kerio.com
1146841d42 Bug 300336: Bugzilla::Auth should not contain any exported subroutines
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2005-07-13 03:57:02 +00:00
mkanat%kerio.com
0c94f9fb90 Bug 285695: [PostgreSQL] Username checks for login, etc. need to be case insensitive
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2005-07-08 02:31:43 +00:00
mkanat%kerio.com
e1a59dde23 Bug 280503: Replace "LOCK/UNLOCK TABLES" with Bugzilla::DB function call
Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat,a=myk
2005-02-17 21:57:27 +00:00
travis%sedsystems.ca
140f3c1905 Bug 280994 : Move ValidateNewUser out of globals.pl
Patch by Max Kanat-Alexander <mkanat@kerio.com>  r=vladd  a=justdave
2005-02-09 06:42:43 +00:00
travis%sedsystems.ca
94087628c8 Bug 278792 : Move Crypt() to Bugzilla::Auth
Patch by Max Kanat-Alexander <mkanat@kerio.com>   r=vladd  a=justdave
2005-01-31 19:26:01 +00:00
bugreport%peshkin.net
7d92a11646 Bug 241900: Allow Bugzilla::Auth to have multiple login and validation styles
patch by erik
r=joel, kiko
a=myk
2004-07-20 22:41:22 +00:00
kiko%async.com.br
6f3fb84923 Fix for bug 234175: Remove deprecated ConnectToDatabase() and
quietly_check_login()/confirm_login() calls.  Cleans up callsites
(consisting of most of our CGIs), swapping (where appropriate) for calls
to Bugzilla->login. Patch by Teemu Mannermaa <wicked@etlicon.fi>.
r=bbaetz, kiko. a=justdave.
2004-03-27 03:51:44 +00:00
kiko%async.com.br
2b54f4f614 Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI.
Consolidates the logout code into Bugzilla::Auth::CGI, and provides
simple front-end wrappers in Bugzilla.pm for use in the CGIs we have.
r=bbaetz, joel; a=justdave.

Adds a set of constants to the logout() API which allow specifying "how
much" we should log out -- all sessions, the current session, or all
sessions but the current one.

Fixes callsites to use this new API; cleans and documents things a
bit while we're at it. Part I in the great COOKIE apocalypse.
2004-03-27 01:28:29 +00:00
timeless%mozdev.org
619847047c Bug 237517 inconsistent spelling of cancelled or canceled
r=kiko a=justdave
2004-03-18 16:14:55 +00:00
justdave%syndicomm.com
316f21b93a Bug 237864: clean up leftovers from the bug 192516 checkin (some occurances of Token got missed)
r= gerv, a= justdave
2004-03-18 09:01:35 +00:00
justdave%syndicomm.com
48a6a62693 Bug 192516: Moving the loose .pm files into the Bugzilla directory, where they belong. These files pre-date the Bugzilla directory, and would have gone there had it existed at the time. The four files in question were copied on the CVS server to preserve CVS history in the files. This checkin deletes them from the old location and modifies everything else to know where they are now.
r= myk, gerv
a= justdave
2004-03-18 03:57:05 +00:00
jocuri%softhome.net
8f995b6477 Patch for bug 234876; removes %FORM from token.cgi; patch by Teemu Mannermaa <wicked@etlicon.fi>; r=kiko, a=justdave. 2004-02-29 14:19:27 +00:00
justdave%syndicomm.com
2a9683e990 Bug 177449: When changing email address, old email address confirmation was case sensitive
patch by Vlad Dascalu <jocuri@softhome.net>
r= kiko, a= justdave
2003-09-24 07:44:22 +00:00
bbaetz%acm.org
bb7609223e Bug 208699 - Move Throw{Code,Template}Error into Error.pm
r,a=justdave
2003-09-14 06:05:23 +00:00
bbaetz%acm.org
c1e4afb682 Bug 180635 - Enhance Bugzilla::User to store additional information
r=myk,jake
2003-06-03 09:48:15 +00:00
bbaetz%acm.org
325350ad59 Bug 201816 - use CGI.pm for header output
r=joel, a=justdave
2003-05-05 01:15:38 +00:00
bbaetz%acm.org
709c9b24de Bug 199813 - Make all users of ThrowUserError pass $vars in explicitly.
r=gerv
a=justdave
2003-04-02 12:35:07 +00:00
jake%bugzilla.org
3c915014e3 Bug 196433 - Bugzilla now uses /usr/bin/perl as the shebang line
r=justdave
a=justdave
2003-03-27 00:07:02 +00:00
bugreport%peshkin.net
438aef1538 Bug 173761 Need ability to always require login
patch by joel
r=gerv, a=justdave
2002-11-27 14:46:06 +00:00
gerv%gerv.net
b90348132e Bug 163114 - Templatise all calls to DisplayError. Patch D (the last one). Patch by gerv; r=burnus. 2002-10-06 11:52:37 +00:00
gerv%gerv.net
bbed0bbae4 Bug 164038 - token.cgi: Cancel token messages should be moved into the templates. Patch by burnus; r=gerv. 2002-09-30 07:22:44 +00:00
bugreport%peshkin.net
1c0ddbd1ae bug 157756 - Groups_20020716_Branch Tracking : > 55 groups now supported
r=bbaetz, gerv
2002-09-22 17:15:13 +00:00
bbaetz%student.usyd.edu.au
2b781fd427 Bug 76923 - Don't |use diagnostics| (its really expensive at startup time)
r=joel x2
2002-08-26 06:17:26 +00:00
gerv%gerv.net
cce43d09f4 Bug 159901 - token.cgi: localize strings send to message.html.tmpl. Patch by burnus; r=gerv. 2002-08-10 08:06:58 +00:00
bbaetz%student.usyd.edu.au
693d63dda2 Bug 151053, ConnectToDatabase/quietly_check_login sometimes not called
early enough
r=mattyt, jouni
2002-06-17 09:39:00 +00:00
gerv%gerv.net
3bc9d4ca2b Bug 138588 - change to use new template structure. Patch by gerv, r=myk, afranke. 2002-04-24 07:24:50 +00:00
justdave%syndicomm.com
04a1b81006 Remaining pieces of Bug 23067 from yesterday... no idea why the first commit didn't pick these up. 2002-04-01 22:52:40 +00:00
gerv%gerv.net
a438ed2f90 Bug 126789 - templatise token.cgi. r=bbaetz, mattyt. 2002-03-15 23:23:12 +00:00
bbaetz%student.usyd.edu.au
12965a910a Bug 95732 - remove logincookies.cryptpassword, and invalidate cookies from
the db when required instead.
(Also fixes bug 58242 as a side effect)

r=myk, kiko
2002-02-04 12:23:05 +00:00
justdave%syndicomm.com
e24c04e22a Fix for bug 108982: enable taint mode for all user-facing CGI files.
Patch by Brad Baetz <bbaetz@student.usyd.edu.au>
r= jake, justdave
2002-01-20 01:44:52 +00:00
jake%acutex.net
27c3b617a6 Fix for bug 95731: "INSERT INTO shadowlog" failed because "Table 'shadowlog' not locked", fixed typo in lock tables command.
Patch by Myk Melez <myk@mozilla.org>
r= jake@acutex.net
2001-08-17 12:42:34 +00:00
justdave%syndicomm.com
6b3b75de75 Fix for bug 77473, bug 74032, and bug 85472: Passwords are no longer stored in plaintext in the database. Passwords are no longer encrypted with MySQL's ENCRYPT() function (because it doesn't work on some installs), but with Perl's crypt() function. The crypt-related routines now properly deal with salts so that they work on systems that use methods other than UNIX crypt to crypt the passwords (such as MD5). Checksetup.pl will walk through your database and re-crypt everyone's passwords based on the plaintext password entry, then drop the plaintext password column. As a consequence of no longer having a plaintext password, it is no longer possible to email someone their password, so the login screen has been changed to request a password reset instead. The user is emailed a temporary identifying token, with a link back to Bugzilla. They click on the link or paste it into their browser and Bugzilla allows them to change their password.
Patch by Myk Melez <myk@mozilla.org>
r= justdave@syndicomm.com, jake@acutex.net
2001-07-11 05:29:21 +00:00